$ rpki-client -vvf rpki.apnic.net/member_repository/A915FCB7/6F4B32168F7211EFB75B1030C4F9AE02/500ACD668F7311EF9A3C6933C4F9AE02.roa File: 500ACD668F7311EF9A3C6933C4F9AE02.roa (raw, json) Hash identifier: o8H7c7fck40bt6N9kc+f53iuHqxqKbLfsu+Sc8AZSh4= Subject key identifier: 50:E9:75:74:00:DC:60:34:8E:F7:E4:8D:94:EE:CA:FE:37:48:63:6A Certificate issuer: /CN=A915FCB7/serialNumber=F371AFDB402A3B5C351DACA6B2CE0F4A4D1A8380 Certificate serial: 04 Authority key identifier: F3:71:AF:DB:40:2A:3B:5C:35:1D:AC:A6:B2:CE:0F:4A:4D:1A:83:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83Gv20AqO1w1Haymss4PSk0ag4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FCB7/6F4B32168F7211EFB75B1030C4F9AE02/500ACD668F7311EF9A3C6933C4F9AE02.roa Signing time: Mon 21 Oct 2024 06:11:30 +0000 ROA not before: Mon 21 Oct 2024 06:11:30 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 142118 IP address blocks: 103.166.128.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FCB7/6F4B32168F7211EFB75B1030C4F9AE02/83Gv20AqO1w1Haymss4PSk0ag4A.crl rsync://rpki.apnic.net/member_repository/A915FCB7/6F4B32168F7211EFB75B1030C4F9AE02/83Gv20AqO1w1Haymss4PSk0ag4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83Gv20AqO1w1Haymss4PSk0ag4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FCB7/serialNumber=F371AFDB402A3B5C351DACA6B2CE0F4A4D1A8380 Validity Not Before: Oct 21 06:11:30 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6715f092-64fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:42:37:68:a8:26:33:b2:44:8e:5e:0b:c9:60: 25:f2:d5:2f:1c:0a:8a:69:70:87:d2:5e:83:ba:1a: a3:8b:0a:eb:64:7f:dc:5b:c6:ec:7e:cc:32:93:2c: bc:5e:c2:10:50:21:8b:73:51:c5:fa:5d:35:12:34: 30:f4:2e:ce:79:13:5b:7e:45:2a:03:56:c1:39:61: 51:21:ee:91:75:2d:e0:63:75:b5:99:3b:be:40:0b: de:38:ca:9c:2c:7e:ef:20:98:26:0f:db:96:c6:4e: 2f:4a:5c:cc:50:3d:4e:83:8f:77:37:1d:2f:bd:1d: 1a:ca:7b:5b:9d:1c:13:99:ff:c6:1c:7f:9c:56:7b: fa:6d:b2:2f:8d:89:4a:67:bd:7f:72:5c:96:bf:25: 24:0d:0c:37:c9:3c:72:9f:34:ef:f2:e9:b0:ac:44: 35:f8:48:7f:bd:c7:d5:c9:33:93:16:5f:2c:84:6b: 2a:16:92:26:78:36:21:37:57:85:9d:0c:92:be:29: 7f:db:fb:d5:be:a3:56:38:93:6b:44:07:52:81:13: 60:f0:13:9b:1b:15:a3:d4:0a:85:d8:62:6f:1e:8b: 07:92:e1:e5:85:95:cb:85:db:47:d2:d3:2c:66:b9: 2c:e0:86:f1:b9:79:b0:9e:45:a2:d0:0e:ff:27:52: 32:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:E9:75:74:00:DC:60:34:8E:F7:E4:8D:94:EE:CA:FE:37:48:63:6A X509v3 Authority Key Identifier: keyid:F3:71:AF:DB:40:2A:3B:5C:35:1D:AC:A6:B2:CE:0F:4A:4D:1A:83:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FCB7/6F4B32168F7211EFB75B1030C4F9AE02/83Gv20AqO1w1Haymss4PSk0ag4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83Gv20AqO1w1Haymss4PSk0ag4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FCB7/6F4B32168F7211EFB75B1030C4F9AE02/500ACD668F7311EF9A3C6933C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.128.0/23 Signature Algorithm: sha256WithRSAEncryption 72:5a:2a:6e:09:77:a3:38:ef:f5:fa:19:bc:43:db:cf:6f:52: fa:1d:1f:22:c6:0d:b1:25:35:5a:3e:3c:4c:a5:e4:b2:b7:a2: 0c:75:26:e3:87:a2:e2:fe:34:f5:a4:e5:5a:18:6c:dc:e1:48: 02:40:81:7c:88:da:be:a9:d6:86:e9:3a:e1:bc:ef:17:80:5b: da:5c:da:de:bf:e0:46:22:7d:8c:74:17:33:6e:e0:57:b3:e7: b5:ff:53:28:d3:e0:4b:bb:15:d0:80:6d:dc:a3:79:68:51:06: bb:cd:92:8c:1d:53:c2:14:d4:26:0a:18:2c:42:2e:60:0d:5e: 28:ca:bb:fc:35:84:0e:68:c2:01:9d:83:fb:9c:fc:4d:26:c0: 2f:f4:5a:23:14:c4:8f:ee:ff:67:15:1b:5e:45:4f:eb:83:5c: 40:d9:da:e8:cd:a3:d6:9c:f9:2e:ac:17:ed:94:2f:00:c0:8d: 7d:9c:cd:72:0b:91:ba:35:91:ae:05:29:3c:05:02:db:0c:13: b1:54:98:d0:aa:c3:4b:5c:03:6c:c8:1e:34:03:dc:61:86:3a: 55:46:a2:89:cb:65:c4:d5:8e:da:f4:3d:4d:ce:81:07:95:43: c7:50:4e:90:90:82:97:e4:c4:5d:02:1f:24:39:95:9d:af:f2: d7:46:90:d8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RkNCNzExMC8GA1UEBRMoRjM3MUFGREI0MDJBM0I1QzM1MURBQ0E2QjJDRTBGNEE0 RDFBODM4MDAeFw0yNDEwMjEwNjExMzBaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MTVmMDkyLTY0ZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCQjdoqCYzskSOXgvJYCXy1S8cCoppcIfSXoO6GqOLCutkf9xbxux+zDKTLLxe whBQIYtzUcX6XTUSNDD0Ls55E1t+RSoDVsE5YVEh7pF1LeBjdbWZO75AC944ypws fu8gmCYP25bGTi9KXMxQPU6Dj3c3HS+9HRrKe1udHBOZ/8Ycf5xWe/ptsi+NiUpn vX9yXJa/JSQNDDfJPHKfNO/y6bCsRDX4SH+9x9XJM5MWXyyEayoWkiZ4NiE3V4Wd DJK+KX/b+9W+o1Y4k2tEB1KBE2DwE5sbFaPUCoXYYm8eiweS4eWFlcuF20fS0yxm uSzghvG5ebCeRaLQDv8nUjIvAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUOl1dADc YDSO9+SNlO7K/jdIY2owHwYDVR0jBBgwFoAU83Gv20AqO1w1Haymss4PSk0ag4Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVGQ0I3LzZGNEIzMjE2OEY3 MjExRUZCNzVCMTAzMEM0RjlBRTAyLzgzR3YyMEFxTzF3MUhheW1zczRQU2swYWc0 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvODNHdjIwQXFPMXcxSGF5bXNzNFBTazBhZzRBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkNCNy82RjRCMzIxNjhGNzIxMUVGQjc1QjEwMzBDNEY5QUUwMi81MDBBQ0Q2NjhG NzMxMUVGOUEzQzY5MzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWemgDANBgkqhkiG9w0BAQsFAAOCAQEAcloqbgl3ozjv9foZ vEPbz29S+h0fIsYNsSU1Wj48TKXksreiDHUm44ei4v409aTlWhhs3OFIAkCBfIja vqnWhuk64bzvF4Bb2lza3r/gRiJ9jHQXM27gV7Pntf9TKNPgS7sV0IBt3KN5aFEG u82SjB1TwhTUJgoYLEIuYA1eKMq7/DWEDmjCAZ2D+5z8TSbAL/RaIxTEj+7/ZxUb XkVP64NcQNna6M2j1pz5LqwX7ZQvAMCNfZzNcguRujWRrgUpPAUC2wwTsVSY0KrD S1wDbMgeNAPcYYY6VUaiictlxNWO2vQ9Tc6BB5VDx1BOkJCCl+TEXQIfJDmVna/y 10aQ2A== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:03 2024 by rpki-client on console-ams.rpki-client.org